OVAL Reference oval:org.opensuse.security:def:2728

Oval Definition:

oval:org.opensuse.security:def:2728

Revision Date:	2020-12-02	Version:	1
Title:	Security update for MozillaFirefox (Important)
Description:	This update for MozillaFirefox, mozilla-nss fixes the following issues: Security issues fixed: - CVE-2018-18500: Fixed a use-after-free parsing HTML5 stream (bsc#1122983). - CVE-2018-18501: Fixed multiple memory safety bugs (bsc#1122983). - CVE-2018-18505: Fixed a privilege escalation through IPC channel messages (bsc#1122983). - CVE-2018-12404: Cache side-channel variant of the Bleichenbacher attack (bsc#1119069). Non-security issue fixed: - Update to MozillaFirefox ESR 60.5.0 - Update to mozilla-nss 3.41.1
Family:	unix	Class:	patch
Status:		Reference(s):	1096209 1098155 1100352 1108606 1111331 1114209 1114832 1115717 1118599 1118897 1118898 1118899 1119069 1120374 1121397 1121626 1121967 1122983 1123013 1124493 1125113 1128376 1128712 1128746 1129715 1131233 1131237 1131239 1131241 1131245 1133229 1134068 1134348 1134598 1135273 1136109 1137526 1154064 1159329 1160850 1160888 1161167 1161719 1163809 CVE-2012-5784 CVE-2014-3596 CVE-2018-1152 CVE-2018-11813 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12404 CVE-2018-13301 CVE-2018-14498 CVE-2018-16873 CVE-2018-16874 CVE-2018-16875 CVE-2018-17000 CVE-2018-18500 CVE-2018-18501 CVE-2018-18505 CVE-2018-19210 CVE-2018-19869 CVE-2019-0196 CVE-2019-0197 CVE-2019-0211 CVE-2019-0217 CVE-2019-0220 CVE-2019-10132 CVE-2019-11091 CVE-2019-12730 CVE-2019-14902 CVE-2019-14907 CVE-2019-17542 CVE-2019-3820 CVE-2019-5736 CVE-2019-6128 CVE-2019-6486 CVE-2019-7663 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2019-9718 CVE-2020-0569 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 SUSE-SU-2019:0273-1 SUSE-SU-2019:0706-1 SUSE-SU-2019:0711-1 SUSE-SU-2019:0786-1 SUSE-SU-2019:0873-1 SUSE-SU-2019:1234-2 SUSE-SU-2019:1373-2 SUSE-SU-2019:1459-1 SUSE-SU-2019:1490-1 SUSE-SU-2019:3184-1 SUSE-SU-2020:0224-1 SUSE-SU-2020:0349-1 SUSE-SU-2020:0468-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND haproxy-1.5.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.51-60.25.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed OR libMagickWand-6_Q16-1-6.8.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libquicktime-1.2.4-14.3 is installed OR libquicktime0-1.2.4-14.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information alsa-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information openconnect-7.08-1 is installed OR openconnect-lang-7.08-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND lighttpd-1.4.35-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND lighttpd-1.4.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information fence-agents-4.4.0+git.1558595666.5f79f9e9-4.6 is installed OR fence-agents-devel-4.4.0+git.1558595666.5f79f9e9-4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavdevice57-3.4.2-4.12 is installed OR libavfilter6-3.4.2-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information MozillaFirefox-60.5.0-3.24 is installed OR MozillaFirefox-devel-60.5.0-3.24 is installed OR MozillaFirefox-translations-common-60.5.0-3.24 is installed OR MozillaFirefox-translations-other-60.5.0-3.24 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.7-6.3 is installed OR libslurm32-17.11.7-6.3 is installed OR perl-slurm-17.11.7-6.3 is installed OR slurm-17.11.7-6.3 is installed OR slurm-auth-none-17.11.7-6.3 is installed OR slurm-config-17.11.7-6.3 is installed OR slurm-devel-17.11.7-6.3 is installed OR slurm-doc-17.11.7-6.3 is installed OR slurm-lua-17.11.7-6.3 is installed OR slurm-munge-17.11.7-6.3 is installed OR slurm-node-17.11.7-6.3 is installed OR slurm-pam_slurm-17.11.7-6.3 is installed OR slurm-plugins-17.11.7-6.3 is installed OR slurm-slurmdbd-17.11.7-6.3 is installed OR slurm-sql-17.11.7-6.3 is installed OR slurm-torque-17.11.7-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information python-numpy_1_16_1-gnu-hpc-1.16.1-4.8 is installed OR python2-numpy-gnu-hpc-1.16.1-4.8 is installed OR python2-numpy-gnu-hpc-devel-1.16.1-4.8 is installed OR python3-numpy-gnu-hpc-1.16.1-4.8 is installed OR python3-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-2 is installed OR cups154-client-1.5.4-2 is installed OR cups154-filters-1.5.4-2 is installed OR cups154-libs-1.5.4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.22 is installed OR reiserfs-kmp-default-4.12.14-25.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR reiserfs-kmp-default-4.12.14-197.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.13 is installed OR kernel-default-livepatch-4.12.14-25.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-2-4 is installed OR kernel-livepatch-SLE15-SP1_Update_0-2-4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libqt5-qtsvg-5.9.4-3.3 is installed OR libqt5-qtsvg-examples-5.9.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information containerd-1.2.5-5.13 is installed OR containerd-ctr-1.2.5-5.13 is installed OR containerd-test-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR docker-runc-test-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR docker-test-18.09.6_ce-6.17 is installed OR docker-zsh-completion-18.09.6_ce-6.17 is installed OR go-1.12-3.10 is installed OR go-doc-1.12-3.10 is installed OR go-race-1.12-3.10 is installed OR go1.11-1.11.9-1.12 is installed OR go1.11-doc-1.11.9-1.12 is installed OR go1.11-race-1.11.9-1.12 is installed OR go1.12-1.12.4-1.9 is installed OR go1.12-doc-1.12.4-1.9 is installed OR go1.12-race-1.12.4-1.9 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaThunderbird-68.8.0-3.80 is installed OR MozillaThunderbird-translations-common-68.8.0-3.80 is installed OR MozillaThunderbird-translations-other-68.8.0-3.80 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.38 is installed OR kernel-azure-base-4.12.14-5.38 is installed OR kernel-azure-devel-4.12.14-5.38 is installed OR kernel-devel-azure-4.12.14-5.38 is installed OR kernel-source-azure-4.12.14-5.38 is installed OR kernel-syms-azure-4.12.14-5.38 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-2.7.14-7.17 is installed OR python-base-2.7.14-7.17 is installed OR python-curses-2.7.14-7.17 is installed OR python-devel-2.7.14-7.17 is installed OR python-gdbm-2.7.14-7.17 is installed OR python-xml-2.7.14-7.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information rsyslog-8.33.1-3.3 is installed OR rsyslog-module-gssapi-8.33.1-3.3 is installed OR rsyslog-module-mysql-8.33.1-3.3 is installed OR rsyslog-module-pgsql-8.33.1-3.3 is installed OR rsyslog-module-relp-8.33.1-3.3 is installed OR rsyslog-module-snmp-8.33.1-3.3 is installed OR rsyslog-module-udpspoof-8.33.1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information nodejs6-6.9.5-7 is installed OR nodejs6-devel-6.9.5-7 is installed OR nodejs6-docs-6.9.5-7 is installed OR npm6-6.9.5-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-1 is installed OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information automake-1.13.4-4 is installed OR m4-1.4.16-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libxerces-c-3_1-3.1.1-12 is installed OR libxerces-c-3_1-32bit-3.1.1-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kernel-default-3.12.60-52.57.1 is installed OR kernel-default-base-3.12.60-52.57.1 is installed OR kernel-default-devel-3.12.60-52.57.1 is installed OR kernel-default-man-3.12.60-52.57.1 is installed OR kernel-devel-3.12.60-52.57.1 is installed OR kernel-macros-3.12.60-52.57.1 is installed OR kernel-source-3.12.60-52.57.1 is installed OR kernel-syms-3.12.60-52.57.1 is installed OR kernel-xen-3.12.60-52.57.1 is installed OR kernel-xen-base-3.12.60-52.57.1 is installed OR kernel-xen-devel-3.12.60-52.57.1 is installed OR kgraft-patch-3_12_60-52_57-default-1-2.1 is installed OR kgraft-patch-3_12_60-52_57-xen-1-2.1 is installed OR kgraft-patch-SLE12_Update_16-1-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND libdmx-devel-1.1.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND libXinerama-devel-1.1.3-3.55 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND enigmail-2.0.7-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.18 is installed OR kernel-default-extra-4.12.14-197.18 is installed

BACK